Lucene search
K

90 matches found

Prion
Prion
added 2018/03/05 7:29 p.m.19 views

Buffer overflow

Backup feature of SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; RSE6500...

5CVSS5.4AI score0.00911EPSS
Exploits0References1Affected Software12
Prion
Prion
added 2018/03/05 7:29 p.m.23 views

Null pointer dereference

PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700...

2.1CVSS5.2AI score0.00211EPSS
Exploits0References1Affected Software24
CVE
CVE
added 2018/03/05 7:0 p.m.59 views

CVE-2017-17134

The CVE-2017-17134 issue affects Huawei devices (DP300, RP200, V600R006C00, TE30/40/50/60, V500R002C00, etc.) where the XML parser fails to properly validate specially crafted XML files. The root cause is improper handling during parsing, leading to a null pointer dereference that can be triggere...

5.5CVSS5.3AI score0.00211EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2018/03/05 7:0 p.m.62 views

CVE-2017-17143

CVE-2017-17143 is a Huawei SIP module overflow vulnerability. The issue occurs when validating certain SIP messages, where the module cannot parse malformed inputs, potentially allowing an attacker to trigger a random process reboot. Affected products include Huawei DP300 family (and related RP20...

5.3CVSS5.4AI score0.00911EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/03/05 7:0 p.m.33 views

CVE-2017-17137

PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700...

5.3AI score0.00138EPSS
Exploits0References1
CVE
CVE
added 2018/03/05 7:0 p.m.58 views

CVE-2017-17136

The CVE-2017-17136 issue is a heap overflow in Huawei’s PEM module across multiple products (e.g., DP300, IPS, NGFW, S series, USG, ViewPoint, etc.). Root cause: insufficient verification in the PEM processing flow, allowing an authenticated local attacker to crash the process by presenting a cra...

5.5CVSS5.4AI score0.00137EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/03/05 7:0 p.m.29 views

CVE-2017-17135

PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700...

5.3AI score0.00211EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/03/05 7:0 p.m.24 views

CVE-2017-17138

PEM module of DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700 V200R006C10...

5.3AI score0.00138EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/03/05 7:0 p.m.32 views

CVE-2017-17142

SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; RSE6500 V500R002C00SPC100;...

5.3AI score0.00911EPSS
Exploits0References1
CVE
CVE
added 2018/03/05 7:0 p.m.60 views

CVE-2017-17138

CVE-2017-17138 is a DoS in the Huawei PEM module caused by insufficient verification, where an authenticated local attacker can trigger a deadloop by presenting a malicious certificate. Affected Huawei products include DP300, IPS, NGFW, NIP6300/6600, RP200, S-series (S12700, S1700, S2700, S5700, ...

5.5CVSS5.2AI score0.00138EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/03/05 7:0 p.m.20 views

CVE-2017-17134

XML parser in Huawei DP300 V500R002C00; RP200 V500R002C00SPC200; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has a DoS vulnerability. Due to not check the specially XML file enoug...

5.3AI score0.00211EPSS
Exploits0References1
CVE
CVE
added 2018/03/05 7:0 p.m.71 views

CVE-2017-17135

CVE-2017-17135 is a null pointer reference vulnerability in the PEM module of Huawei products, including DP300 family, IPS, NGFW, NIP, S-series, Secospace USG, ViewPoint, TE, TP, USG9500, and related models, due to insufficient verification. An authenticated local attacker can call the PEM decode...

5.5CVSS5.2AI score0.00211EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/02/15 4:29 p.m.29 views

CVE-2017-17291

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20,...

5.5CVSS5.3AI score0.00211EPSS
Exploits0References1
NVD
NVD
added 2018/02/15 4:29 p.m.35 views

CVE-2017-17184

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an...

4.3CVSS5AI score0.00705EPSS
Exploits0References1
NVD
NVD
added 2018/02/15 4:29 p.m.33 views

CVE-2017-17186

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a DoS vulnerability. Due to insufficient input validation, an authenticated, remote...

5.5CVSS5.4AI score0.0061EPSS
Exploits0References1
NVD
NVD
added 2018/02/15 4:29 p.m.27 views

CVE-2017-17183

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an...

4.3CVSS5AI score0.00705EPSS
Exploits0References1
OSV
OSV
added 2018/02/15 4:29 p.m.3 views

CVE-2017-15354

Huawei DP300, V500R002C00, RP200, V600R006C00, TE30, V100R001C10, V500R002C00,V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00,V600R006C00, TE60, V100R001C10, V500R002C00, V600R006C00, TX50,V500R002C00, V600R006C00 have a buffer overflow vulnerability. An attacker may send specially...

5.3CVSS6.1AI score
Exploits0References1
OSV
OSV
added 2018/02/15 4:29 p.m.3 views

CVE-2017-15356

Huawei DP300, V500R002C00, RP200, V600R006C00, TE30, V100R001C10, V500R002C00,V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00,V600R006C00, TE60, V100R001C10, V500R002C00, V600R006C00, TX50,V500R002C00, V600R006C00 have a buffer overflow vulnerability. An attacker may send specially...

5.3CVSS6.1AI score0.01177EPSS
Exploits0References1
Prion
Prion
added 2018/02/15 4:29 p.m.23 views

Denial of service

Huawei AR3200 V200R008C20, V200R008C30, TE40 V600R006C00, TE50 V600R006C00, TE60 V600R006C00 have a denial of service vulnerability. The software decodes X.509 certificate in an improper way. A remote unauthenticated attacker could send a crafted X.509 certificate to the device. Successful exploi...

5CVSS7.4AI score0.00773EPSS
Exploits0References1Affected Software4
Prion
Prion
added 2018/02/15 4:29 p.m.20 views

Buffer overflow

The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20,...

5CVSS5.4AI score0.00906EPSS
Exploits0References1Affected Software26
Rows per page
Query Builder